Articles in this section

Prerequisites for the implementation of external authentication (SSO)

Avatar
administratif
  • Updated
Follow

The external authentication option (SSO - Single Sign On) allows you to access Compilatio services with an external account, for example that of your institution.

Here are the requirements for implementing your external authentication (SSO) to Compilatio services, depending on your authentication type.

 

Go directly to the purpose(s) you are interested in:

  1. CAS authentication
  2. LDAP authentication
  3. Shibboleth authentication

 

1. CAS authentication

  1. You must allow our *.compilatio.net service to access the school's CAS server (37.187.90.19; 94.23.251.165; 46.105.99.121).

  2. Allow mandatory access to *.compilatio.net to the 4 attributes corresponding to name, first name, email and affiliation of the institution's CAS.
    The affiliation attribute allows     distinguish between members who can access Compilatio and those who can't.

  3. Have a teacher test account (temporary or not) in order to validate the implementation of CAS authentication. Please provide us with the test account credentials in your application form.

* These IP addresses are subject to change in the future, it is best to perform the authorization on the domain name.

If it is impossible to authorize *.compilatio.net, please contact your sales consultant to discuss the possibilities.

 

2. LDAP authentication

  1. You must authorize our *.compilatio.net service to access the LDAP directory of the institution (37.187.90.19; 94.23.251.165; 46.105.99.121).

  2. Allow mandatory access to *.compilatio.net to the 4 attributes corresponding to last name, first name, email and LDAP affiliation of the institution. The affiliation attribute allows distinguish between members who can access Compilatio and those who can't.

  3. Have a teacher test account (temporary or not) in order to validate the implementation of LDAP authentication. Please provide us with the test account credentials in your application form.

* These IP addresses are subject to change in the future, it is best to perform the authorization on the domain name.

If it is impossible to authorize *.compilatio.net, please contact your sales consultant to discuss the possibilities.

 

3. Shibboleth authentication

  • The information requested in the External Authentication Request Form is sufficient if your institution is registered with one of the following Identity Federations:
    • Edugain (international);
    • Renater (France).
  • If your institution is registered with another identity federation (other than Renater and Edugain), please provide us with the 3 configuration files for the Service Provider dedicated to you, namely :
    • shibboleth2.xml (general configuration) ;
    • attribute-map.xml (attribute mapping) ;
    • attribute-policy.xml (rules around attributes).

 

Related articles